Seeking pointers to someone that can help with Debian + Active Directory LDAP integration

Dan Coutu coutu at snowy-owl.com
Wed Aug 23 12:40:26 EDT 2017


Mark, thanks for the pointers. I had found the Redhat doc previously but the Microsoft doc is new to me.

Dan

> On Aug 23, 2017, at 12:20, mark <prgrmr at gmail.com> wrote:
> 
> Dan,
> 
> You can LDAP authenticate directly into Active Directory. You have the choice of using KerberOS to authenticate the server(s), or skipping that and just doing on-demand individual authentication via LDAP calls from your Linux systems to AD.  The AD systems used to (pre-2003) require "Unix Services for Windows", but Microsoft has removed that and basically baked-in the base LDAP functionality into Active Directory. Below is the process explained from both the Windows and the Linux side
> 
> https://technet.microsoft.com/en-us/library/2008.12.linux.aspx <https://technet.microsoft.com/en-us/library/2008.12.linux.aspx>
> 
> https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Windows_Integration_Guide/introduction.html <https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Windows_Integration_Guide/introduction.html>
> 
> Good luck!
> mark
> 
> On Wed, Aug 23, 2017 at 11:51 AM, Dan Coutu <coutu at snowy-owl.com <mailto:coutu at snowy-owl.com>> wrote:
> Due to business demands I’m in a situation where the primary LDAP server currently used for all authentication is planned to be replaced with an (ugh) Exchange server. At this point the attempts to talk the business team out of it are complete and now we need to move forward. As expected the people at Microsoft are lost, dazed, and confused when we mention that we are a Linux shop and need to integrate their technology into ours.
> 
> So I’m seeking someone that has experience with doing this type of integration. It needs to include things such as PAM integration and authentication via LDAP for a variety of Linux tools such as gitlab, RT, and so forth.
> 
> This is not a request for volunteer help but rather a request for getting connected with a pro that can tackle some of the work.
> 
> Yeah, I know there’s a GNHLUG job list but the last time I sent to it nothing ever returned from the black hole. Besides, I’m just asking for pointers to people.
> 
> Anyway, thanks to anyone that can help!
> 
> Dan
> 
> _______________________________________________
> gnhlug-discuss mailing list
> gnhlug-discuss at mail.gnhlug.org <mailto:gnhlug-discuss at mail.gnhlug.org>
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/ <http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/>
> 
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.gnhlug.org/pipermail/gnhlug-discuss/attachments/20170823/a10b9409/attachment.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 842 bytes
Desc: Message signed with OpenPGP
Url : http://mail.gnhlug.org/pipermail/gnhlug-discuss/attachments/20170823/a10b9409/attachment.bin 


More information about the gnhlug-discuss mailing list